LastPass reported a data breach where hackers stole source code and confidential information after infiltrating its systems.
LastPass reported a data breach where hackers stole source code and confidential information after infiltrating its systems.
LastPass is one of the largest password management companies in the world, used by over 33 million people and 100,000 businesses.
An unauthorised party gained access to portions of the LastPass development environment through “a single compromised developer account” and took parts of source code and some proprietary technical information.
After sending questions about the attack, the company released a security advisory today confirming that it was breached through a compromised developer account that hackers used to access the company's developer environment.
The company said it had engaged the services of leading cybersecurity and forensics firms and has implemented additional countermeasures.
According to LastPass, all of their “products and services are operating normally”, and there is no evidence to show “any unauthorised access to customer data in our production environment.”
The company stores passwords in ‘encrypted vaults’ that can only be decrypted using a customer’s master password, which LastPass says was not compromised in this cyberattack.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?